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DETAILED ACTION 

1 . This office action is in response to the communication filed on 06/07/2006. 

2. The examiner would like to point out that this action is made FINAL (MPEP 706.07a). 

3. The information disclosure statement received on 03/28/2002 had been considered, and a 

signed copy of the IDS had been sent to the applicant with the previous office action. 

4. The examiner acknowledges that this application claim priority to a previous application filed 
on 09/28/1999. 

5. Claim 1-7 are currently presented for the examination. 

6. Claim 1-7 have been rejected. 

Response to Arguments 

7. Regarding claim 1-7, the applicant primarily argues that the reference Stallings does not teach: 

(a) utilizing a deffi-hellman key exchange protocol by SNMP manager and the SNMP agent to 
enter an initial privacy key and an initial authentication key into the SNMPv3 device; 

(b) reading by the SNMP manager, the public value of the SNMP agent through a SNMP 
request using an initial valid user having access to the public value of the SNMP agent; and 

© wherein the public value of the SNMP manager is initially stored in a third entity different 
from that associated with the SNMP manager and the SNMP agent, and the method comprises 
downloading the configuration from the third entity by the SNMP agent. 

8. In response to applicant's above argument (a)-(c) with respect to claim 1-7, they have been 
fully considered, but they are moot in view of the new ground(s) of rejection (see office action below). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all obviousness 
rejections set forth in this Office action: 
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(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are such that 
the subject matter as a whole would have been obvious at the time the invention was made to a person having ordinary skill 
in the art to which said subject matter pertains. Patentability shall not be negatived by the manner in which the invention 
was made. 

9. Claim 1-7 are rejected under 35 USC 103 (a) as being unpatentable over Staliings (SNMPv3: A 
Security Enhancement for SNMP, William Staliings, IEEE, 1998) in view of StTohns fDiffie-Hellman Key 
Change, Internet-draft, 1998). 

Regarding claim 1, Staliings teaches a method for initializing a SNMP (simple network 
management protocol) v3 device using an SNMP agent in the SNMPv3 device and SNMP manager 
remote from the SNMPv3 device, comprising: 

the SNMP manager and the SNMP agent to enter an initial privacy key and an initial 
authentication key into the SNMPv3 device (Page 11, Col 2 to Page 12, Col 2; key localization; 
authentication key; encryption/ key), 

wherein said utilizing step includes: 

generating an associated random number and public value by both the SNMP manager and the 
SNMP agent (Page 12, Col 1 to Page 13, Col 1; localized keys for agent; user keys; SHA-1; HMAC) 

passing the public value of the SNMP manager to the SNMP agent in a configuration file 
(Page 13, Col 1, configuring localized key on agent's system in secure fashion); 

reading by the SNMP manager, the public value of the SNMP agent through a SNMP request 
using an initial valid user having access to the public value of the SNMP agent (Page 12, Col 2, unique 
key for authorized users); and 

computing a shared secret by the SNMP agent and the SNMP manager (Page 12, Col 2, shared 
secret key), wherein the method is characterized by the steps of : 
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converting the shared secret into a readable password (Fig 7, element: expended hashed 
password string; Page 12, Col 1, lines 29-48; human readable password; concatenating and repeating 
the users' password to itself to generate digestO; generating digestO from the password; Page 12, Col 2, 
lines 29-40; "actual secret" shared between users and authoritative SNMP engine; single user's key; 
the examiner interprets such "expended password string" or "digestO" or "digest 1" as claimed 
"readable password" because of their similar features); 

converting the readable password into a secret key ( Page 12, Col 1, lines 38-48; Page 12, Col 
2, lines 29-40; localized keys; "secret key" shared by users and authoritative SNMP engine; 
converting users keys to unique keys; Page 13, Col 1, lines 1-12; the examiner interprets such 
"localized key" or "unique keys" or "secret keys" as claimed "secret keys" because of their similar 
features); and 

setting the initial authentication key (Page 12, Col 1, lines 29-30; authentication key; Page 12, 
Col 2, lines 25-40; generating authentication key; Page 13, Col 1, lines 1-12; digest 2), and an initial 
privacy key to the value of the secret key (Page 12, Col 1, lines 29-30; privacy key; Page 12, Col 2, 
lines 25-40; generating encryption key). 

Stallings fails to disclose utilizing a Diffie-Hellman key exchange protocol by the SNMP 
manager and the SNMP agent to enter an initial privacy key and an initial authentication key into the 
SNMPv3 device; and 

computing a shared secret by the SNMP agent and the SNMP manager (Page 12, Col 2, shared 
secret key), using the Diffie Hellman key exchange protocol. 

However, SUohns teaches utilizing a Diffie-Hellman key exchange protocol by the SNMP 
manager and the SNMP agent to enter an initial privacy key and an initial authentication key into the 
SNMPv3 device (Page 4, section 1.1 to Page 5, line 2); and 
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computing a shared secret by the SNMP agent and the SNMP manager (Page 12, Col 2, shared 
secret key), using the Diffie Hellman key exchange protocol (Page 7; shared secret). 

StJohns and Stallings are analogous art because they are from the same field of endeavor of 
key management in SNMP. At the time of the invention it would have been obvious to a person of 
ordinary skill in art to combine the teachings of StJohns with Stallings to utilize a Diffie Hellman key 
exchange protocol for creating privacy keys, authentication keys, and shared secret keys in order to 
incorporate a commonly used network key agreement/ generation scheme such as Diffie Hellman 
protocol in MIB for providing further key security (StJohns, Page 1, 4). 

Regarding claim 2> it is rejected applying as above rejecting claim 1, furthermore, Stallings 
teaches the method wherein the readable password comprises a 16 character password (Page 12, Col 1, 
lines 28-37; human-readable passwords; RFC-2274 algorithm for mapping password to key; octet 
privacy and authentication key; mapping password to key; Page 12, Col 2, lines 25-40; single/ 
plurality of password to create keys of plurality of bit length; Stallings implies that such password can 
be eight or sixteen or any other suitable characters long depending on the level of security, and 
plurality of shorter password can be concatenated to create a longer password). 

Regarding claim J, it is rejected applying as above rejecting claim 1, furthermore, Stallings 
teaches the method wherein the secret key comprises a 16 byte string (Page 12, Col 1, lines 29-49; 
Page 13, Col 1, lines 1-10; 16 octet key). 



Regarding claim 4, it is rejected applying as above rejecting claim 1, furthermore, Stallings 
teaches the method further characterized in the configuration file comprises a proprietary 
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configuration file element for passing the public value of the SNMP manager to the SNMP agent 
(Page 3,Col 2, lines 26- 34; set of documents defining network protocol; proprietary network 
management applications; Page 4,Col 2, lines 25-50; Page 9,Col 2, lines 58-66; command generator; 
USM files in the security related parameters; authoritative module). 

Regarding claim 5, it is rejected applying as above rejecting claim 4, furthermore, Stallings 
teaches the method wherein the SNMPv3 device operates in a SNMPvl/ v2c enabled network 
comprising a SNMPv2c device ( Page 2, Col 2, lines 1-37; SNMPv3 defines a security capability to be 
used in conjunction with SNMPv2 or SNMPvl), and wherein the proprietary configuration file 
element is ignored by the SNMPv2c device (Fig 1, element : PDU processing for SNMPvl or 
SNMPv2, element: SNMPv3 USM; Table 2, element: snmpSecurityModel; Page 2, Col 2, lines 5-35; 
User Security Model (USM) for SNMPv3; SNMP Protocol Data Unit (PDU) for SNMPvl and 
SNMPv2; Page 3, Col 2, lines 25-45; Management Information Base (MIB) for keeping local 
configuration data for SNMPv2; Stalling teachings of plurality of independent configuration/ 
security or management protocol for the different version of SNMP implies that the proprietary 
configuration file element used by SNMPv3 device can be ignored by the SNMPv2c device). 

Regarding claim 6, it is rejected applying as above rejecting claim 1, furthermore , StTohns 
discloses the method wherein the public value of the SNMP manager is included in a management 
information base (MIB) object in the configuration file (Page 7; usmDHPublicobjects). 



Regarding claim 7, it is rejected applying as above rejecting claim 1, furthermore , SUohns 
discloses the method wherein the public value of the SNMP manager is initially stored in a third entity 
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different from that associated with the SNMP manager and the SNMP agent (Page 1, MIB, Agent , 
manager), and the method comprises downloading the configuration from the third entity by the 
SNMP agent (Page 9-10; usmUserPrivProtocol; usmDHKeyMIBCompliance; read; installed). 



10. Applicant's amendment necessitated the new ground(s) of rejection presented in this Office 
action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). Applicant is 
reminded of the extension of time policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for response to this action is set to expire in 3 (Three) months 
and 0 (Zero) days from the mailing date of this letter. Failure to respond within the period for response 
will result in ABANDOMENT of the application (see 35 U.S.C 133, M.P.E.P 710.02(b)). 

Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to Shanto M Z Abedin whose telephone number is 571-272-3551. The examiner 
can normally be reached on M-F from 9:00 AM to 5:30 PM. If attempts to reach the examiner by 
telephone are unsuccessful, the examiner's supervisor, Moazzami Nasser, can be reached on 571-272- 
4195. The fax phone number for the organization where this application or proceeding is assigned is 
703-872-9306. Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications may 
be obtained from either Private PAIR or Public PAIR. Status information for unpublished applications 
is available through Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR system, contact the 
Electronic Business Center (EBC) at 866-217-9197 (toll-free). 
Shanto M Abedin 
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